[libvirt] [PATCH 1/9] Restrict virDomain{Attach, Detach}Device to active domains
Jim Fehlig
jfehlig at novell.com
Mon Jan 25 23:16:59 UTC 2010
Daniel P. Berrange wrote:
> On Thu, Jan 14, 2010 at 10:42:38AM -0700, Jim Fehlig wrote:
>
>> virDomain{Attach,Detach}Device is now only permitted on active
>> domains. Explicitly state this restriction in the API
>> documentation and enforce it in libvirt frontend.
>> ---
>> src/libvirt.c | 14 ++++++++++++--
>> 1 files changed, 12 insertions(+), 2 deletions(-)
>>
>> diff --git a/src/libvirt.c b/src/libvirt.c
>> index d973907..1145561 100644
>> --- a/src/libvirt.c
>> +++ b/src/libvirt.c
>> @@ -5121,7 +5121,8 @@ error:
>> * @domain: pointer to domain object
>> * @xml: pointer to XML description of one device
>> *
>> - * Create a virtual device attachment to backend.
>> + * Create a virtual device attachment to backend. This function,
>> + * having hotplug semantics, is only allowed on an active domain.
>> *
>> * Returns 0 in case of success, -1 in case of failure.
>> */
>> @@ -5142,6 +5143,10 @@ virDomainAttachDevice(virDomainPtr domain, const char *xml)
>> virLibDomainError(domain, VIR_ERR_OPERATION_DENIED, __FUNCTION__);
>> goto error;
>> }
>> + if (!virDomainIsActive(domain)) {
>> + virLibDomainError(domain, VIR_ERR_OPERATION_INVALID, __FUNCTION__);
>> + goto error;
>> + }
>> conn = domain->conn;
>>
>> if (conn->driver->domainAttachDevice) {
>> @@ -5164,7 +5169,8 @@ error:
>> * @domain: pointer to domain object
>> * @xml: pointer to XML description of one device
>> *
>> - * Destroy a virtual device attachment to backend.
>> + * Destroy a virtual device attachment to backend. This function,
>> + * having hot-unplug semantics, is only allowed on an active domain.
>> *
>> * Returns 0 in case of success, -1 in case of failure.
>> */
>> @@ -5185,6 +5191,10 @@ virDomainDetachDevice(virDomainPtr domain, const char *xml)
>> virLibDomainError(domain, VIR_ERR_OPERATION_DENIED, __FUNCTION__);
>> goto error;
>> }
>> + if (!virDomainIsActive(domain)) {
>> + virLibDomainError(domain, VIR_ERR_OPERATION_INVALID, __FUNCTION__);
>> + goto error;
>> + }
>> conn = domain->conn;
>>
>> if (conn->driver->domainDetachDevice) {
>> --
>>
>
> Agreed with the added doc comments, but I think I prefer that we do the
> check for active in the drivers themselves, at time of use. Doing the
> check at the top level is open to race conditions, since no locks are
> held on the objects in question at this point. Drivers will thus have
> to do extra checks themselves, making this top level one redundant.
> So I think we should just add the docs here.
>
Ok. Modified patch below.
Thanks,
Jim
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 01.patch
Type: text/x-patch
Size: 1315 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/libvir-list/attachments/20100125/75fab445/attachment-0001.bin>
More information about the libvir-list
mailing list